Widespread SMS phishing attack thwarted with Cloudflare Zero Trust and YubiKeys

Presented by

Michael Keane, Zero Trust Product specialist, Cloudflare; Beau Anderson, Solutions Architect, Yubico

About this talk

In July 2022, Cloudflare prevented a breach by an SMS phishing attack that targeted more than 130 companies; these attacks received mainstream media coverage and truly illustrated the vulnerabilities in basic MFA. While some Cloudflare employees opened the phishing messages, Cloudflare was able to thwart the attack due to the company’s use of Cloudflare Zero Trust paired with modern YubiKey MFA. At Cloudflare, phishing-resistant hardware keys are issued to every employee and required to access all Cloudflare applications. In this webinar, you will learn: Real world examples and values of these joint security technologies Best practices for implementation with popular IAM and/or ZTNA platforms Learnings from a cross-company deployment How physical security keys played a crucial role in not allowing Cloudflare to be another victim in this widespread phishing attack. Furthermore, discover the broad uses and functionality of YubiKeys, YubiEnterprise Subscription for YubiKey-as-a-Service flexible purchasing, and YubiEnterprise Delivery for fulfillment of physical security keys to distributed workforces. Confidentiality and Data Processing: The information you provide in this form will be held in confidence by Yubico, Inc. and its Affiliates. Any personal information submitted in this form will be used by Yubico, Inc. and its Affiliates, for their performance of this webinar, and as such, you agree to being contacted and receiving relevant marketing materials. “Affiliate” means an entity that, directly or indirectly, controls, is controlled by, or is under common control with Yubico, Inc.
Related topics:

More from this channel

Upcoming talks (3)
On-demand talks (99)
Subscribers (36107)
Yubico, the inventor of the YubiKey, makes secure login easy and available for everyone. Since the company was founded in 2007, it has been a leader in setting global standards for secure access to computers, mobile devices, servers, browsers, and internet accounts. Yubico is a creator and core contributor to the FIDO2, WebAuthn, and FIDO Universal 2nd Factor (U2F) open authentication standards, and is a pioneer in delivering modern, hardware-based authentication security at scale. YubiKeys are the gold standard for phishing-resistant multi-factor authentication (MFA), enabling a single device to work across hundreds of consumer and enterprise applications and services. Yubico’s technology enables secure authentication, encryption, and code signing and is used and loved by many of the world’s largest organizations and millions of customers in more than 160 countries. Aligned with its mission of making the internet more secure for everyone, Yubico donates YubiKeys to organizations helping at-risk individuals through the philanthropic initiative, Secure it Forward. Yubico is privately held, with presence around the globe and offices in Palo Alto, San Francisco, Seattle, and Stockholm. For more information, please visit: www.yubico.com.